package com.dev.web.controller.common;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.ResponseBody;

import com.dev.bbs.domain.BbsUser;
import com.dev.common.constant.ShiroConstants;
import com.dev.common.core.controller.BaseController;
import com.dev.common.core.domain.AjaxResult;
import com.dev.common.utils.ServletUtils;
import com.dev.common.utils.StringUtils;
import com.dev.framework.util.ShiroUtils;

/**
 * @ClassName BbsLoginController
 * @PackageName com.dev.web.controller
 * @Description 登录
 * @Author daiz
 * @Date 2019/9/19 10:49
 * @Version 1.0
 */
@Controller
public class BbsLoginController extends BaseController
{
    private String prefix = "common";

    /**
     * 登录页
     *
     * @return
     */
    @GetMapping("login")
    public String goLogin(HttpServletRequest request, HttpServletResponse response, String redirectUrl, Model model)
    {
        // 如果是Ajax请求，返回Json字符串。
        if (ServletUtils.isAjaxRequest(request))
        {
            return ServletUtils.renderString(response, "{\"code\":\"1\",\"msg\":\"未登录或登录超时。请重新登录\"}");
        }
        model.addAttribute("redirectUrl", redirectUrl);
        return prefix + "/login";
    }

    /**
     * 登录
     *
     * @param username
     * @param password
     * @return
     */
    @PostMapping("login")
    @ResponseBody
    public AjaxResult ajaxLogin(String username, String password)
    {
        UsernamePasswordToken token = new UsernamePasswordToken(username, password);
        Subject subject = SecurityUtils.getSubject();
        try
        {
            subject.login(token);
            BbsUser bbsuser = ShiroUtils.getBbsUser();
            ShiroUtils.getSession().setAttribute(ShiroConstants.CURRENT_USER, bbsuser);
            return success();
        }
        catch (AuthenticationException e)
        {
            String msg = "用户或密码错误";
            if (StringUtils.isNotEmpty(e.getMessage()))
            {
                msg = e.getMessage();
            }
            return error(msg);
        }
    }
}
